Lucene search
K

161 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2026/06/12 10:52 p.m.39 views

Security Bulletin: Multiple security vulnerabilities are addressed with IBM Process Mining Interim Fix for May 2026

Summary Multiple vulnerabilities were addressed in IBM Process Mining 2.1.1 IF002 Vulnerability Details CVEID:CVE-2026-7246 DESCRIPTION: Pallets Click, versions 8.3.2 and below, contain a command injection vulnerability in the click.edit function, allowing attackers to pass arbitrary OS commands...

9.1CVSS8.7AI score0.00967EPSS
Exploits3Affected Software1
Packet Storm News
Packet Storm News
added 2026/06/05 12:0 a.m.17 views

Beyond Pass/Fail: Using Process Mining to Understand How LLMs Resist (And Fail) Red Team Attacks

Standard AI red teaming evaluations reduce adversarial campaigns to a single binary outcome, attack success rate ASR, not taking into account the sequential structure of how models resist or yield to attacks. We propose applying process mining, a discipline for discovering and analyzing process...

5.4AI score
Exploits0
IBM Security Bulletins
IBM Security Bulletins
added 2026/04/30 11:49 a.m.17 views

Security Bulletin: Multiple security vulnerabilities are addressed with IBM Process Mining Interim Fix for April 2026

Summary In addition to many updates of operating system level packages, the following security vulnerabilities are addressed with IBM Process Mining 2.1.1 IF001 Vulnerability Details CVEID:CVE-2026-35554 DESCRIPTION: A race condition in the Apache Kafka Java producer client’s buffer pool manageme...

9.8CVSS7.9AI score0.03494EPSS
Exploits1Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2026/04/22 5:4 p.m.10 views

Security Bulletin: Multiple security vulnerabilities are addressed with IBM Process Mining Interim Fix for January 2026

Summary In addition to many updates of operating system level packages, the following security vulnerabilities are addressed with IBM Process Mining 2.1.0 IF001 Vulnerability Details CVEID:CVE-2026-21860 DESCRIPTION: Werkzeug is a comprehensive WSGI web application library. Prior to version 3.1.5...

8.9CVSS7AI score0.00622EPSS
Exploits0Affected Software1
Packet Storm News
Packet Storm News
added 2026/04/20 12:0 a.m.7 views

Enhancing Anomaly-Based Intrusion Detection Systems with Process Mining

Anomaly-based Intrusion Detection Systems IDSs ensure protection against malicious attacks on networked systems. While deep learning-based IDSs achieve effective performance, their limited trustworthiness due to black-box architectures remains a critical constraint. Despite existing explainable...

5.7AI score
Exploits0
IBM Security Bulletins
IBM Security Bulletins
added 2026/03/31 4:18 p.m.11 views

Security Bulletin: Multiple security vulnerabilities are addressed with IBM Process Mining 2.1.1

Summary In addition to many updates of operating system level packages, the following security vulnerabilities are addressed with IBM Process Mining 2.1.1 Vulnerability Details CVEID:CVE-2026-22732 DESCRIPTION: When applications specify HTTP response headers for servlet applications using Spring...

9.8CVSS6.8AI score0.16903EPSS
Exploits6Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2026/02/26 9:40 a.m.10 views

Security Bulletin: Multiple security vulnerabilities are addressed with IBM Process Mining Interim Fix for February 2026

Summary In addition to many updates of operating system level packages, the following security vulnerabilities are addressed with IBM Process Mining 2.1.0 IF002 Vulnerability Details CVEID:CVE-2026-1225 DESCRIPTION: ACE vulnerability in configuration file processing by QOS.CH logback-core up to a...

8.7CVSS6.6AI score0.00613EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2025/12/05 9:12 a.m.12 views

Security Bulletin: Multiple security vulnerabilities are addressed with IBM Process Mining 2.1.0

Summary In addition to many updates of operating system level packages, the following security vulnerabilities are addressed with IBM Process Mining 2.1.0 Vulnerability Details CVEID:CVE-2025-41248 DESCRIPTION: The Spring Security annotation detection mechanism may not correctly resolve annotatio...

9.1CVSS8.6AI score0.01916EPSS
Exploits1Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2025/10/31 11:14 a.m.11 views

Security Bulletin: Multiple security vulnerabilities are addressed with IBM Process Mining Interim Fix for Oct 2025

Summary In addition to many updates of operating system level packages, the following security vulnerabilities are addressed with IBM Process Mining 2.0.3 IF001 Vulnerability Details CVEID:CVE-2025-58457 DESCRIPTION: Improper permission check in ZooKeeper AdminServer lets authorized clients to ru...

7.5CVSS6.6AI score0.00631EPSS
Exploits1Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2025/06/21 1:39 p.m.13 views

Security Bulletin: Multiple security vulnerabilities are addressed with IBM Process Mining 2.0.2

Summary In addition to many updates of operating system level packages, the following security vulnerabilities are addressed with IBM Process Mining 2.0.2 Vulnerability Details CVEID:CVE-2025-48050 DESCRIPTION: In DOMPurify through 3.2.5 before 6bc6d60, scripts/server.js does not ensure that a...

8.8CVSS8.1AI score0.01495EPSS
Exploits6Affected Software1
OSV
OSV
added 2025/06/21 1:15 p.m.1 views

CVE-2025-36016

IBM Process Mining 2.0.1 IF001 and 2.0.1 could allow a remote attacker to conduct phishing attacks, using an open redirect attack. By persuading a victim to visit a specially crafted Web site, a remote attacker could exploit this vulnerability to spoof the URL displayed to redirect a user to a...

8.2CVSS5.6AI score
Exploits0References1
NVD
NVD
added 2025/06/21 1:15 p.m.4 views

CVE-2025-36016

IBM Process Mining 2.0.1 IF001 and 2.0.1 could allow a remote attacker to conduct phishing attacks, using an open redirect attack. By persuading a victim to visit a specially crafted Web site, a remote attacker could exploit this vulnerability to spoof the URL displayed to redirect a user to a...

8.2CVSS0.00205EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/06/21 12:38 p.m.8 views

CVE-2025-36016 IBM Process Mining HTTP open redirect

IBM Process Mining 2.0.1 IF001 and 2.0.1 could allow a remote attacker to conduct phishing attacks, using an open redirect attack. By persuading a victim to visit a specially crafted Web site, a remote attacker could exploit this vulnerability to spoof the URL displayed to redirect a user to a...

6.8CVSS0.00205EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/06/21 12:38 p.m.4 views

CVE-2025-36016 IBM Process Mining HTTP open redirect

IBM Process Mining 2.0.1 IF001 and 2.0.1 could allow a remote attacker to conduct phishing attacks, using an open redirect attack. By persuading a victim to visit a specially crafted Web site, a remote attacker could exploit this vulnerability to spoof the URL displayed to redirect a user to a...

6.8CVSS6.6AI score0.00205EPSS
Exploits0References1
CVE
CVE
added 2025/06/21 12:38 p.m.26 views

CVE-2025-36016

CVE-2025-36016 : IBM Process Mining versions 2.0.1 IF001 and 2.0.1 are affected by an open redirect vulnerability that could enable remote phishing by spoofing a URL to redirect users to a malicious site. The underlying issue is an input/redirect handling flaw within the product. Impact described...

8.2CVSS6.3AI score0.00205EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2025/06/21 12:0 a.m.4 views

PT-2025-26503 · Ibm · Ibm Process Mining

Name of the Vulnerable Software and Affected Versions: IBM Process Mining versions 2.0.1 through 2.0.1 IF001 Description: The issue allows a remote attacker to conduct phishing attacks using an open redirect attack. By persuading a victim to visit a specially crafted Web site, a remote attacker...

8.2CVSS5.8AI score0.00205EPSS
Exploits0References5
CNNVD
CNNVD
added 2025/06/21 12:0 a.m.3 views

IBM Process Mining 输入验证错误漏洞

IBM Process Mining is a process mining solution from International Business Machines IBM. An input validation error vulnerability exists in IBM Process Mining versions 2.0.1 IF001 and 2.0.1, which stems from an open redirect and could lead to a phishing attack...

8.2CVSS6.3AI score0.00205EPSS
Exploits0References3
IBM Security Bulletins
IBM Security Bulletins
added 2025/05/28 2:21 p.m.16 views

Security Bulletin: Multiple security vulnerabilities are addressed with IBM Process Mining Interim Fix for May 2025

Summary In addition to many updates of operating system level packages, the following security vulnerabilities are addressed with IBM Process Mining 2.0.1 IF001 Vulnerability Details CVEID:CVE-2025-31651 DESCRIPTION: Improper Neutralization of Escape, Meta, or Control Sequences vulnerability in...

9.8CVSS10AI score0.04505EPSS
Exploits3Affected Software1
Packet Storm News
Packet Storm News
added 2025/05/16 12:0 a.m.4 views

Privacy and Confidentiality Requirements Engineering for Process Data

The application and development of process mining techniques face significant challenges due to the lack of publicly available real-life event logs. One reason for companies to abstain from sharing their data are privacy and confidentiality concerns. Privacy concerns refer to personal data as...

6.9AI score
Exploits0
IBM Security Bulletins
IBM Security Bulletins
added 2025/04/15 3:20 a.m.32 views

Security Bulletin: Multiple security vulnerabilities are addressed with IBM Process Mining 2.0

Summary In addition to many updates of operating system level packages, the following security vulnerabilities are addressed with IBM Process Mining 2.0 Vulnerability Details CVEID:CVE-2024-52317 DESCRIPTION: Apache Tomcat could provide weaker than expected security, caused by an incorrect...

9.8CVSS9.9AI score0.09304EPSS
Exploits7Affected Software2
Rows per page
Query Builder